Description

MediaWiki before 1.19.4 and 1.20.x before 1.20.3 contains an error in the api.php script which allows remote attackers to obtain sensitive information.

Remediation

References

CVE-2013-1817

Related Vulnerabilities

WordPress Plugin SEO Backdoor (5.0)

SharePoint CVE-2021-26418 Vulnerability (CVE-2021-26418)

MySQL CVE-2019-3004 Vulnerability (CVE-2019-3004)

WordPress Plugin BuddyPress Cover Arbitrary File Upload (2.1.4.2)

MySQL CVE-2016-0666 Vulnerability (CVE-2016-0666)

Severity

High

Classification

CVE-2013-1817 CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities